Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: jobmozlrlkB73FGx9vQgULF6klHT5scZCBXIjr+m5dQ=
Subject key identifier: D0:15:31:62:62:52:CF:2B:34:C1:C5:A6:AA:9C:46:2B:81:6C:9A:24
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0199FC8FB99E3545709B7837A4CEF1E4CFCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 15E1
Signing time: Sun 19 Oct 2025 13:01:41 +0000
Manifest this update: Sun 19 Oct 2025 13:01:41 +0000
Manifest next update: Mon 20 Oct 2025 13:01:41 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: xWCAJX2YroRWrYMZcnaF3ezZKgPBtP4JMejUtzn8wnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:b9:9e:35:45:70:9b:78:37:a4:ce:f1:e4:cf:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Oct 19 13:01:41 2025 GMT
Not After : Oct 20 13:01:41 2025 GMT
Subject: CN=d01531626252cf2b34c1c5a6aa9c462b816c9a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fa:20:21:8f:29:fa:e5:2e:23:e6:ec:60:01:
25:84:8e:1c:d4:21:5c:00:73:cf:6a:f6:5c:d0:b2:
68:70:57:37:7f:5d:db:3f:6c:bf:7e:df:db:67:9e:
c2:a6:71:70:57:b5:4c:68:03:4e:65:10:64:7c:0a:
f8:36:b0:54:07:2e:5f:51:33:6a:f0:b1:85:9a:56:
af:e3:7d:28:9a:f8:d7:71:9c:e4:65:35:ca:39:c8:
e2:b1:f1:bb:7f:26:0b:2c:ea:0d:d3:94:a4:57:6a:
63:85:34:53:2d:3a:e0:65:13:b5:f1:95:c5:35:db:
07:27:f0:29:89:39:9c:34:a7:82:a7:84:98:91:c4:
7b:e0:5a:88:19:c0:76:e5:11:e4:32:04:31:83:bf:
b4:74:08:fe:12:2a:40:fd:26:f3:28:8b:1d:ad:b7:
7f:b1:78:17:49:a0:ce:0d:2b:31:da:6d:c3:27:43:
9c:47:b5:cd:87:75:ee:83:96:7f:3a:d1:27:a3:42:
73:41:fd:f1:2c:d5:72:b9:2a:52:a2:23:bb:ab:9d:
b8:17:c6:dc:e0:69:79:f6:74:39:e6:fe:74:1a:57:
92:bd:7d:e0:17:8f:04:e0:8c:06:d0:ea:24:b7:15:
96:09:b0:e9:81:f2:65:7a:4c:d5:8c:3d:f4:ed:8c:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:15:31:62:62:52:CF:2B:34:C1:C5:A6:AA:9C:46:2B:81:6C:9A:24
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:fa:26:aa:7b:a6:4f:28:32:df:46:ff:38:8f:3b:01:b6:48:
99:09:c9:08:38:27:0e:c0:52:51:78:01:25:eb:ef:f1:f1:5c:
06:eb:32:1c:d9:6f:27:59:ad:3c:4a:43:02:27:c2:7f:05:09:
24:f1:c8:0d:0b:51:de:47:c3:30:4f:f0:fd:c6:e8:23:aa:d7:
28:b7:57:42:b2:3c:98:35:98:c6:36:52:8b:e3:f5:e7:f6:91:
e8:29:9d:f7:d1:e6:c2:56:6f:0c:5d:5b:97:04:4d:28:ff:21:
42:c4:3e:38:6a:1c:d3:8e:50:89:5a:6d:3c:82:56:a4:e3:25:
1c:69:63:c8:58:a2:5b:e0:6e:1d:56:6d:a1:e5:db:69:3d:87:
b2:23:e6:c8:b1:33:28:eb:66:ca:cb:63:a3:31:fb:ba:ae:89:
81:83:77:fb:69:56:c8:67:ad:72:97:01:44:fe:91:bb:82:a5:
79:0c:c2:1b:6f:fa:81:3b:65:7d:cb:4f:f9:bb:68:51:73:01:
b9:67:da:2e:ba:f2:fe:ec:d5:e1:12:14:d1:71:f8:9f:74:61:
2c:e1:9b:ac:ee:97:d3:ee:59:10:a5:90:c3:21:6d:2e:ac:a2:
07:60:19:6c:5d:1a:5e:ee:69:2b:2b:4f:7f:87:9a:56:82:55:
61:e9:dc:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:40:47 2025 by rpki-client